The ‘maxlegnth’ attribute is not being applied when used with cfscript:
Not sure if I’m doing something wrong or this is a bug. Here is an example:
// mysql80
// CREATE TABLE maxlenbug (
// `ID` int unsigned PRIMARY KEY AUTO_INCREMENT,
// `TheString` varchar(20)
// );
<cfset TheString = "MORE THAN TWENTY CHARACTERS IN THIS LONG STRING">
<cfscript>
// this will not throw error...
queryExecute(
sql = "INSERT INTO maxlenbug (`TheString`) VALUES (:THESTRING)",
params = { 'TheString': { value:TheString, sqltype: "VARCHAR", maxlength: 20 } },
options = { datasource: "timesheets_main" }
);
</cfscript>
<!--- this will throw error --->
<cfquery name="qTest" datasource="timesheets_main">
INSERT INTO maxlenbug (`TheString`) VALUES (
<cfqueryparam sqltype="VARCHAR" maxlength="20" value="#TheString#">
)
</cfquery>
The script version falls through to a database error stating the field will be truncated.
The tag version throws the following error as expected:
value [MORE THAN TWENTY CHARACTERS IN THIS LONG STRING] is too large, defined maxlength is [20] but length of value is [47]
I’ve tried all combinations of the param struct including assignment and declaration:
{ 'TheString': { value:TheString, sqltype: "VARCHAR", maxlength: 20 } },
{ 'TheString'+ { value=TheString, sqltype="VARCHAR", maxlength=20 } },
{ 'TheString'= { value="#TheString", sqltype="VARCHAR", maxlength="20" } },
None of it makes a difference. If you omit the ‘value’ attribute though you get this:
The key [value] does not exist, only the following keys are available: [maxlength,sqltype] .
Which tells me the maxlength attributes is making it to the query param validation,
its just being ignored.
We’ve got an app in development with hundreds of params defined with maxlength attributes and just
discovered none of them actually work.
This is lucee@5.3.6+61 on ColdBox 6.2.2 and CommandBox 5.2.0+00280